With the Certified Information Security Manager® (CISM®) certification, IT professionals learn how to assess risks, implement effective governance and respond proactively to security incidents. This course prepares participants specifically for the CISM certification exam and provides relevant expertise in the field of information security.

Main Topics

The main topics of the CISM® course cover the following six main areas:

• General information about the exam and certification
• Domain 1: Information Security Governance
  – Introduction to information security governance
  – Legal, regulatory and contractual requirements
  – Organizational structures, roles and responsibilities
  – Development of the information security strategy
  – Frameworks and standards for information security governance
  – Strategic planning
• Domain 2: Information security risk management
  – Emerging risk and threat landscape
  – Analysis of vulnerabilities and control deficits
  – Risk assessment and analysis
  – Risk treatment or risk response options
  – Risk ownership and responsibility
  – Risk monitoring and reporting
• Domain 3: Information Security Program Development and Management
  – Resources of the information security program
  – Identification and classification of information and assets
  – Industry standards and frameworks for information security
  – Information security policies, procedures and guidelines
  – Information security program metrics
  – Design and selection of security controls
  – Management of the security program
  – Operation of the security program
  – IT service management
  – Governance
  – Metrics and monitoring
• Domain 4: Information Security Incident Management
  – Overview of security incident management
  – Development of security incident response plans
  – Response to security incidents
  – Business continuity and disaster recovery planning
• Audit Practice / preparation & sample exams

Goals

The learning objectives of the CISM® training programme include:

1. understanding the format and structure of the CISM® certification exam
2. knowledge of the various topics and technical areas covered on the exam
3. practice with specific strategies, tips and techniques for passing the exam
4. opportunity to work on practice questions with subsequent analyses of the answers

The training aims to prepare participants for the CISM® exam by providing them with a comprehensive understanding of the exam process, exam content and proven exam preparation strategies.

Requirements

No formal requirements for the training, please note the certification requirements under Certificate.

Target Audience

The CISM® course is aimed at experienced information security managers and people with responsibilities in the area of information security management. This includes IT consultants, auditors, managers, security policy writers, data protection officers, information security officers, network administrators, security device administrators and security engineers. The course is ideal for those who have technical expertise and experience in IS/IT security and control and want to make the step from team member to manager. The CISM® certification can build confidence and credibility when interacting with internal and external stakeholders, peers and regulators.

Certificate

CISM® – Certified in the Governance of Enterprise IT, awarded by ISACA.
Exam language English

To become CISM certified it requires:

1.) Passing the CISM Exam

2.) Applying for certification within the five-year window after passing the exam.

3.) 5 years of experience in the Information Security Management field. To find out whether or not your experience qualifies, you will need to view the CISM job practice areas at: https://www.isaca.org/credentialing/cism/cism-job-practice-areas. You must have experience within 3 out of the 4 domain areas. All experience must be within the 10 years of the application.

4.) Verification of Work Experience

Teaching Materials

Teaching material in English includes:

• Student Workbook
• Exam voucher incl. training-slides & mock exams

Early bird discount

If you book more than 4 months in advance, we offer you a discount of 10% on the course fee

Quantity discount

Motivate your environment. Already with 3 persons in the same course and simultaneous registration we grant interesting discounts on the course fees:

• 3 people on the same course date 10%
• 4 people on the same course date 15%
• 5 people on the same course date 20%

The discounts are not cumulative – the highest discount always applies.

Book directly

We offer most onsite courses in hybrid mode. You have the possibility to participate remotely in the onsite trainings. Simply check the appropriate box when registering.